232897 – www/gitea: Update to 1.5.3 (Fixes security vulnerability)

Bug 232897 - www/gitea: Update to 1.5.3 (Fixes security vulnerability)

Summary: www/gitea: Update to 1.5.3 (Fixes security vulnerability)

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	Florian Smeets

URL:
Keywords:

Depends on:
Blocks:

Reported:	2018-11-01 21:46 UTC by Stefan Bethke
Modified:	2018-11-02 07:17 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Patch to update gitea port to 1.5.3 (818 bytes, patch) 2018-11-01 21:46 UTC, Stefan Bethke	no flags	Details \| Diff
Patch to vuxml describing the vulnerability (1.38 KB, patch) 2018-11-01 21:46 UTC, Stefan Bethke	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Stefan Bethke 2018-11-01 21:46:13 UTC

Created attachment 198875 [details]
Patch to update gitea port to 1.5.3

Update Gitea to 1.5.3

Release notes: https://blog.gitea.io/2018/10/gitea-1.5.3-is-released/

Fixes a potential remote code execution vulnerability.

Comment 1 Stefan Bethke 2018-11-01 21:46:51 UTC

Created attachment 198876 [details]
Patch to vuxml describing the vulnerability

Comment 2 commit-hook freebsd_committer

2018-11-01 22:01:04 UTC

A commit references this bug:

Author: flo
Date: Thu Nov  1 22:00:17 UTC 2018
New revision: 483744
URL: https://svnweb.freebsd.org/changeset/ports/483744

Log:
  Document gitea vulnerability

  PR:		232897
  Submitted by:	stb@lassitu.de (maintainer)

Changes:
  head/security/vuxml/vuln.xml

Comment 3 commit-hook freebsd_committer

2018-11-01 22:03:07 UTC

A commit references this bug:

Author: flo
Date: Thu Nov  1 22:02:21 UTC 2018
New revision: 483745
URL: https://svnweb.freebsd.org/changeset/ports/483745

Log:
  Update to 1.5.3

  PR:		232897
  Submitted by:	stb@lassitu.de (maintainer)
  MFH:		2018Q4
  Security:	deb4f633-de1d-11e8-a9fb-080027f43a02

Changes:
  head/www/gitea/Makefile
  head/www/gitea/distinfo

Comment 4 Florian Smeets freebsd_committer

2018-11-01 22:06:43 UTC

Committed. Thanks.

Comment 5 commit-hook freebsd_committer

2018-11-02 07:17:18 UTC

A commit references this bug:

Author: flo
Date: Fri Nov  2 07:17:06 UTC 2018
New revision: 483776
URL: https://svnweb.freebsd.org/changeset/ports/483776

Log:
  MFH: r483745

  Update to 1.5.3

  PR:		232897
  Submitted by:	stb@lassitu.de (maintainer)
  Security:	deb4f633-de1d-11e8-a9fb-080027f43a02

  Approved by:	ports-secteam (miwi)

Changes:
_U  branches/2018Q4/
  branches/2018Q4/www/gitea/Makefile
  branches/2018Q4/www/gitea/distinfo